Event Manager and Tickets Selling Plugin for WooCommerce – WpEvently – WordPress Plugin, CVE-2024-49703

CVE, Research URL: CVE-2024-49703
Home page URL: Security reports for Event Manager and Tickets Selling Plugin for WooCommerce – WpEvently – WordPress Plugin
Application: Event Manager and Tickets Selling Plugin for WooCommerce – WpEvently – WordPress Plugin
Published on: Oct 24, 2024
Research Description: Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in MagePeople Team Event Manager for WooCommerce allows Stored XSS.This issue affects Event Manager for WooCommerce: from n/a through 4.2.5.
Affected versions: Min -, max 4.2.6.
Status: vulnerable

Event Manager and Tickets Selling Plugin for WooCommerce &#8211; WpEvently &#8211; WordPress Plugin, CVE-2024-49703